/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */

package UserPackage;

import java.io.IOException;
import java.io.PrintWriter;
import java.security.NoSuchAlgorithmException;
import java.util.logging.Level;
import java.util.logging.Logger;
import javax.servlet.ServletException;
import javax.servlet.annotation.WebServlet;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

/**
 *
 * @author CCS
 */
public class LoginServlet extends HttpServlet {
   
    /** 
     * Processes requests for both HTTP <code>GET</code> and <code>POST</code> methods.
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    protected synchronized void processRequest(HttpServletRequest request, HttpServletResponse response)
    throws ServletException, IOException {
        response.setContentType("text/html;charset=UTF-8");
        PrintWriter out = response.getWriter();
        try {
            User login = null;
            String token = null;
            String salt = null;
            String IP = null;
            boolean addAttempt;
            boolean resetAttempt;
            HttpSession userSession = request.getSession(true);
           // PrintWriter out = response.getWriter();
            String username;
            String password;
            String hash;
            username = request.getParameter("username");
            password = request.getParameter("password");
            hash = new Hasher().passHasher(password);
            
            
           //Assuming we have a function that checks the user credentials
            //checker = new UserManager().checkUser(username, password);
            
            int attempt = new UserManager().checkLogAttempt(username);
            if (attempt < '3' )
            {
            if(new UserManager().checkUser(username,password) == true){
                new UserManager().resetLogAttempt(username);
                userSession.invalidate();
                userSession = request.getSession(true);
                userSession.setMaxInactiveInterval(600);
                IP = request.getRemoteAddr();
                userSession.setAttribute("username",username);
                userSession.setAttribute("IPAdd", IP);
                userSession.setAttribute("userType", "4");
                response.sendRedirect("userHomePage.jsp");
            }
            else if (new UserManager().checkProdMgr(username,password) == true){
                new UserManager().resetLogAttempt(username);
                userSession.invalidate();
                userSession = request.getSession(true);
                userSession.setMaxInactiveInterval(600);
                IP = request.getRemoteAddr();
                userSession.setAttribute("username",username);
                userSession.setAttribute("IPAdd", IP);
                userSession.setAttribute("userType", "2");
                response.sendRedirect("prodMgrHomePage.jsp");
            }
            else if (new UserManager().checkAcctMgr(username,password)==true){
                new UserManager().resetLogAttempt(username);
                userSession.invalidate();
                userSession = request.getSession(true);
                userSession.setMaxInactiveInterval(600);
                IP = request.getRemoteAddr();
                userSession.setAttribute("username",username);
                userSession.setAttribute("IPAdd", IP);
                userSession.setAttribute("userType", "3");
                response.sendRedirect("acctMgrHomePage.jsp");
            }
            else if (new UserManager().checkAdmin(username, password) == true){
                new UserManager().resetLogAttempt(username);
                userSession.invalidate();
                userSession = request.getSession(true);
                userSession.setMaxInactiveInterval(600);
                IP = request.getRemoteAddr();
                userSession.setAttribute("username",username);
                userSession.setAttribute("IPAdd", IP);
                userSession.setAttribute("userType", "1");
                response.sendRedirect("adminPage.jsp");
            }
            else{
                addAttempt = new UserManager().addLogAttempt(username);
                response.sendRedirect("home.jsp");
            }
            }
            else
                response.sendRedirect("home.jsp");
            
            
        } finally { 
            out.close();
        }
    } 

    // <editor-fold defaultstate="collapsed" desc="HttpServlet methods. Click on the + sign on the left to edit the code.">
    /** 
     * Handles the HTTP <code>GET</code> method.
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    @Override
    protected void doGet(HttpServletRequest request, HttpServletResponse response)
    throws ServletException, IOException {
        processRequest(request, response);
    } 

    /** 
     * Handles the HTTP <code>POST</code> method.
     * @param request servlet request
     * @param response servlet response
     * @throws ServletException if a servlet-specific error occurs
     * @throws IOException if an I/O error occurs
     */
    @Override
    protected void doPost(HttpServletRequest request, HttpServletResponse response)
    throws ServletException, IOException {
        processRequest(request, response);
    }

    /** 
     * Returns a short description of the servlet.
     * @return a String containing servlet description
     */
    @Override
    public String getServletInfo() {
        return "Short description";
    }// </editor-fold>

}
